Hi,
I was wondering if soft-matching has changed?
Case: A customer has AAD Connect. He has a cloud only admin-account in AzureAD (Username like admin-user@domain.com). The account has a blank immutableID-field. We created a user in on premises AD with the same UPN and run a sync. Now, what I expect is for
AAD Connect to match the two users. This does not happen. Instead a new user is created in Office365 with username like admin-user1442@domain.onmcrosoft.com.
To work around this I copied the immutableID from the newly created user, deleted it, and set the immutableid on the cloud only admin-account. A new sync matched the users.
I know that I, in the past, have done soft-matching like this. I have even made AD-migrations where I have soft-matched hundereds of users just by clearing the immutableid field in AzureAD and ran a new sync from the new AD with matching UPNs.
Does anyone know why soft-matching does not work like I expect it?